CVE-2021-25456

OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file...

Time Travel Debugging: finding Windows GDI flaws

Introduction Microsoft Patches for October 2018 included a total of 49 security patches. There were many interesting ones including kernel privilege escalation as well as critical ones which could lead to remote code execution such as the MSXML one. In this post we will be analysing a case of a W...

MS08-0 5 2 WMF vulnerability analysis and vulnerability testing-vulnerability warning-the black bar safety net

------ by CuteK A background knowledge By the file format to start with,to analyze the MS08-0 5 2 vulnerability, and construct a you can make without the patch the program crash pictures, 1 WMF file structure --------------------------| | Files head | |-------------------------| | File-record |...

Microsoft WMF memory corruption vulnerability

Overview Microsoft applications fail to properly handle Windows Metafile WMF images potentially allowing a remote attacker to execute arbitrary code on a vulnerable system. Description The Microsoft Windows Graphics Rendering Engine supports a number of image formats including WMF images. Windows...